Lucene search
MitreCVELIST:CVE-2021-37473HistoryJul 26, 2021 - 5:11 p.m.
CVE-2021-37473
2021-07-2617:11:12
mitre
www.cve.org
3
navigatecms
sql injection
parameter vulnerability
post request
backend database
In NavigateCMS version 2.9.4 and below, function in product.php is vulnerable to sql injection on parameter products-order through a post request, which results in arbitrary sql query execution in the backend database.
Related
prion
prion
Sql injection
2021-07-26 18:15:00
cve
cve
CVE-2021-37473
2021-07-26 18:15:08
cnvd
cnvd
Navigate CMS sql injection vulnerability (CNVD-2021-57419)
2021-07-27 00:00:00
nvd
nvd
CVE-2021-37473
2021-07-26 18:15:08